{
  "public_date" : "2008-08-26T00:00:00Z",
  "bugzilla" : {
    "description" : "zoneminder: command injection, SQL injection and multiple XSS issues (CVE-2008-3882, CVE-2008-3880, CVE-2008-3881)",
    "id" : "460280",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=460280"
  },
  "cwe" : "(CWE-77|CWE-89|CWE-79)",
  "details" : [ "SQL injection vulnerability in zm_html_view_event.php in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary SQL commands via the filter array parameter." ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2008-3880\nhttps://nvd.nist.gov/vuln/detail/CVE-2008-3880" ],
  "name" : "CVE-2008-3880",
  "csaw" : false
}